this post was submitted on 17 Jun 2023
78 points (100.0% liked)

Selfhosted

40132 readers
535 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Saw this posted over here: https://sh.itjust.works/post/163355

sounds like a really fun concept that should be shared here too :D

top 11 comments
sorted by: hot top controversial new old
[–] Abyss@lemmy.comfysnug.space 23 points 1 year ago (1 children)

I've always liked this, it has pretty much everything you could want in a personal project: a catchy name and a whimsical idea that is just on the edge of being actually practical.

[–] pcouy@lemmy.pierre-couy.fr 9 points 1 year ago

Yeah, there is something oddly mesmerizing about projects that solve an "already-solved-in-a-more-efficient-way" problem in a weird way

[–] idle@158436977.xyz 7 points 1 year ago

I really like the name

[–] Badabinski@kbin.social 4 points 1 year ago* (last edited 1 year ago) (1 children)

I always thought this was such a cool concept when I was administrating a Hashicorp Vault server. I made 7 fragments for 7 keyholders, and required that 4 or 5 of them (can't remember) enter their fragments to unlock the Vault server.

This is probably implemented with Shamir's secret sharing algorithm or similar.

[–] Pika@lemmy.world 3 points 1 year ago* (last edited 1 year ago)

that's super cool, almost zero use case but if you have a super sensitive string (such as a bank or wallet code) I guess it's a good layer of offline security

[–] bigredgiraffe@lemmy.world 2 points 1 year ago

This is cool! This could be a handy way to store important private keys like internal root CA keys in known locations that are distributed across an infrastructure. Oh man, maybe even in a vault file for secrets you don’t need often like break glass credentials and the like. Such a cool and unique idea!

Incredibly cool, will def try this

[–] original_reader@lemmy.ml 2 points 1 year ago

I love the way I would keep my stuff safe:

Now you just need to disperse the horcruxes around the house on various USBs or online locations and hope you can recall where they all are!

[–] kemtue@lemmy.fmhy.ml 1 points 1 year ago

There is actually one use case for it. I create a yearly backup that i distribute across my friends (mostly via CD-ROMs) which include all my files that i can't afford to lose, like encryption keys, keepass database, crypto wallets (everything that isn't encrypted data gets aes-encrypted via gpg and a 512-bit key which is stored in the keepass database). But if say a malicious actor gets access to it by social-engineering they could start brute-forcing the keepass-database (good luck though with my passphrase and 10-rounds of argon2 with 4-threads and 4gig vector size), by splitting it into fragments that vector would be closed.

This is insane, I love it.

load more comments
view more: next ›